html/template: provide a way to specify the initial escaping context (JS or CSS) when parsing #8762
Milestone
Comments
I think that a coarse-grained mechanism would be fine. JS, CSS, or HTML seems a reasonable level of granularity. I'm concerned that if we try to expose the whole context object publicly, then we risk confusing users, expand the API unnecessarily, and possibly paint ourselves into a corner should the languages change in radical ways (string templates in JS) or some weird zero-day arrives. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The text was updated successfully, but these errors were encountered: